| |
| |||||||
Log-Analyse und Auswertung: Computer Arbeitsspeicher ausgelastet durch dllhost.exeWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
28.06.2014, 21:19
| #1 |
 |  Computer Arbeitsspeicher ausgelastet durch dllhost.exe Hallo liebes Trojaner-Board Team, seit paar tagen habe ich ein Problem mit meinem Computer. Er wird auf einmal, nach bestimmter Zeit, extrem langsam. Deswegen habe ich mal im Task-Manager geguckt und gesehen das eine Datei Namens "ddlhost.exe" um die ~14GB Arbeitsspeicher verbraucht. Nun wollte ich euch bitten mit mir das Problem zu beheben. Ich habe vorher natürlich gegoogelt und habe was gelesen das es mit der Onboard Soundkarte zutun haben könnte, da ich mir vor paar Tagen auch eine gekauft habe könnte es tatsächlich daran liegen. Würde sie aber sehr gerne behalten das sie etwas gekostet hat. Folgende Soundkarte ist neu im System gekommen: "Asus Xonar DX interne PCIe Soundkarte 7.1". Würde mich außerdem freuen, wenn ihr mein System etwas aufräumen würdet. Hier die Logs: defogger: Code:
ATTFilter defogger_disable by jpshortstuff (23.02.10.1)
Log created at 21:38 on 28/06/2014 (Mirco)
Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
Checking for services/drivers...
-=E.O.F=-
Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-06-2014 02
Ran by Mirco (administrator) on MIRCO-PC on 28-06-2014 21:40:00
Running from C:\Users\Mirco\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(brother Industries Ltd) C:\Windows\SysWOW64\brsvc01a.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(AMD) C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe
() C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpert.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
(DeviceVM, Inc.) C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
(brother Industries Ltd) C:\Windows\SysWOW64\brss01a.exe
() C:\Program Files\EslWire\service\WireHelperSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Pandora.TV) C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(CyberGhost S.R.L) C:\Program Files\CyberGhost 5\Service.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
() C:\Windows\SysWOW64\HsMgr.exe
() C:\Windows\system\HsMgr64.exe
(SteelSeries ApS) C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe
() C:\Program Files (x86)\puush\puush.exe
(Akamai Technologies, Inc.) C:\Users\Mirco\AppData\Local\Akamai\netsession_win.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(CMedia) C:\Program Files\ASUS Xonar DX Audio\Customapp\AsusAudioCenter.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\32\WacomDesktopCenter.exe
(Akamai Technologies, Inc.) C:\Users\Mirco\AppData\Local\Akamai\netsession_win.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(DeviceVM, Inc.) C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Windows\SysWOW64\WinMsgBalloonServer.exe
(ASUSTeK Computer Inc.) C:\Program Files\ASUS\Turbo Key\TurboKey.exe
() C:\Windows\SysWOW64\WinMsgBalloonClient.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Brother\Brmfcmon\BrMfcMon.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(PandoraTV) C:\Program Files (x86)\PANDORA.TV\PanService\KMPProcess.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Users\Mirco\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Mirco\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Mirco\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Mirco\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Mirco\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Mirco\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Mirco\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Mirco\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Mirco\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Mirco\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Mirco\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [Cmaudio8788] => C:\Windows\Syswow64\cmicnfgp.dll [12935168 2012-11-20] (C-Media Corporation)
HKLM\...\Run: [Cmaudio8788GX] => C:\Windows\syswow64\HsMgr.exe [200704 2008-07-11] ()
HKLM\...\Run: [Cmaudio8788GX64] => C:\Windows\system\HsMgr64.exe [282112 2008-07-11] ()
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2489456 2010-12-17] (VIA)
HKLM-x32\...\Run: [BCU] => C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe [411864 2010-03-05] (DeviceVM, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2013-12-30] (AVAST Software)
HKLM-x32\...\Run: [Cpu Level Up help] => C:\Program Files\ASUS\Ai Suite\CpuLevelUpHelp.exe [887936 2009-12-28] ()
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Turbo Key] => C:\Program Files\ASUS\Turbo Key\TurboKey.exe [1874432 2009-11-24] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [BrMfcWnd] => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [1159168 2009-05-26] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [vmware-tray.exe] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [111696 2013-10-18] (VMware, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)
HKU\.DEFAULT\...\RunOnce: [SPReview] - C:\Windows\System32\SPReview\SPReview.exe [301568 2013-12-01] (Microsoft Corporation)
HKU\S-1-5-21-3375157477-2246312369-2620638491-1000\...\Run: [Google Update] => C:\Users\Mirco\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-11-29] (Google Inc.)
HKU\S-1-5-21-3375157477-2246312369-2620638491-1000\...\Run: [SteelSeries Engine] => C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe [242688 2013-11-05] (SteelSeries ApS)
HKU\S-1-5-21-3375157477-2246312369-2620638491-1000\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 5\CyberGhost.EXE [358000 2014-01-16] (CyberGhost S.R.L.)
HKU\S-1-5-21-3375157477-2246312369-2620638491-1000\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [55360 2014-06-24] (Raptr, Inc)
HKU\S-1-5-21-3375157477-2246312369-2620638491-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3375157477-2246312369-2620638491-1000\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3595608 2014-06-26] (Electronic Arts)
HKU\S-1-5-21-3375157477-2246312369-2620638491-1000\...\Run: [puush] => C:\Program Files (x86)\puush\puush.exe [567880 2014-04-09] ()
HKU\S-1-5-21-3375157477-2246312369-2620638491-1000\...\Run: [GoogleChromeAutoLaunch_6EA9B229FA701F8B409297DE365E1C1E] => C:\Users\Mirco\AppData\Local\Google\Chrome\Application\chrome.exe [860488 2014-06-05] (Google Inc.)
HKU\S-1-5-21-3375157477-2246312369-2620638491-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Mirco\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-3375157477-2246312369-2620638491-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21445248 2014-05-08] (Skype Technologies S.A.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE OC_GURU.lnk
ShortcutTarget: GIGABYTE OC_GURU.lnk -> C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe (GIGABYTE Technology Co.,Ltd.)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.splashtop.com/asusexpressgate/mb/searchAPI.php?SE=yahoo&QS=http%3A%2F%2Fde.search.yahoo.com%2Fsearch%3Ffr%3Dfp-devicevm%26type%3DWEB01
URLSearchHook: HKCU - SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch64.dll (DeviceVM, Inc.)
URLSearchHook: HKCU - SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)
SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP5B5AA3BD-6B08-4DB7-97A5-9E5E9BF5EF05&q={searchTerms}&SSPV=
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP5B5AA3BD-6B08-4DB7-97A5-9E5E9BF5EF05&q={searchTerms}&SSPV=
SearchScopes: HKCU - {0B82A6EE-5967-4f67-8AE1-1BC915D0FE82} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=EGMB
SearchScopes: HKCU - {6BB3DD99-9A51-4fdc-9100-75EF0EFD432B} URL = hxxp://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=5369970905&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=de&q={searchTerms}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Microsoft Web Test Recorder 12.0 Helper - {432dd630-7e03-4c97-9d62-b99f52df4fc2} - C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll (Microsoft Corporation)
BHO-x32: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Hosts: 127.0.0.1 lm.licenses.adobe.com
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Mirco\AppData\Roaming\Mozilla\Firefox\Profiles\k8ztegsb.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.3 - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin: wacom.com/WacomTabletPlugin - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.3 - C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 - C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin-x32: wacom.com/WacomTabletPlugin - C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Mirco\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Mirco\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Mirco\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: wacom.com/WacomTabletPlugin - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-11-29]
Chrome:
=======
CHR HomePage: hxxp://www.google.de/
CHR StartupUrls: "www.google.com"
CHR Extension: (Media Hint) - C:\Users\Mirco\AppData\Local\Google\Chrome\User Data\Default\Extensions\anepbdekljkmmimmhbniglnnanmmkoja [2014-03-12]
CHR Extension: (Google Docs) - C:\Users\Mirco\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-29]
CHR Extension: (Google Drive) - C:\Users\Mirco\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-29]
CHR Extension: (YouTube) - C:\Users\Mirco\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-29]
CHR Extension: (Google-Suche) - C:\Users\Mirco\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-29]
CHR Extension: (Attack on Titan: Eren Jaeger) - C:\Users\Mirco\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhodmdpaleejajgggnkfkkmjkamgclgb [2014-03-08]
CHR Extension: (AdBlock) - C:\Users\Mirco\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-11-29]
CHR Extension: (avast! Online Security) - C:\Users\Mirco\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-11-29]
CHR Extension: (Google Wallet) - C:\Users\Mirco\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-29]
CHR Extension: (YouTube Unblocker) - C:\Users\Mirco\AppData\Local\Google\Chrome\User Data\Default\Extensions\npnkeeiehehhefofiekoflfedgehcdhl [2014-05-10]
CHR Extension: (NotScripts) - C:\Users\Mirco\AppData\Local\Google\Chrome\User Data\Default\Extensions\odjhifogjcknibkahlpidmdajjpkkcfn [2014-01-20]
CHR Extension: (SiteBlock) - C:\Users\Mirco\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfglnpdpgmecffbejlfgpnebopinlclj [2014-04-02]
CHR Extension: (Google Mail) - C:\Users\Mirco\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-29]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2013-11-29]
==================== Services (Whitelisted) =================
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-04-17] (Advanced Micro Devices, Inc.) [File not signed]
R2 AMD_RAIDXpert; C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe [122880 2009-12-15] (AMD) [File not signed]
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [96896 2009-12-28] (ASUSTeK Computer Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-12-30] (AVAST Software)
S2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [113704 2013-12-30] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2014-04-03] () [File not signed]
R2 Brother XP spl Service; C:\Windows\SysWOW64\brsvc01a.exe [57344 2004-06-14] (brother Industries Ltd)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [15768 2010-02-03] (Microsoft Corporation)
R2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [64112 2014-01-16] (CyberGhost S.R.L)
R2 EslWireHelper; C:\Program Files\EslWire\service\WireHelperSvc.exe [663056 2014-01-29] ()
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2013-08-22] (Microsoft Corporation) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
S3 MozillaMaintenance; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice_tmp.exe [119408 2013-12-05] (Mozilla Foundation)
R2 MSSQL$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation)
R2 PanService; C:\Program Files (x86)\PANDORA.TV\PanService\KMPService.exe [1922600 2013-07-08] (Pandora.TV)
S4 SQLAgent$SQLEXPRESS; c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed]
S2 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [14405200 2013-10-18] ()
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87728 2013-10-04] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [635160 2014-04-04] (Wacom Technology, Corp.)
==================== Drivers (Whitelisted) ====================
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
S2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-24] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-06] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2013-12-30] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-11-29] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-29] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1034464 2013-12-30] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [422216 2013-12-30] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [79672 2013-12-30] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-30] ()
R3 cmudaxp; C:\Windows\System32\drivers\cmudaxp.sys [2734080 2013-04-11] (C-Media Inc)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-12-27] (Disc Soft Ltd)
R0 ESLWireAC; C:\Windows\System32\drivers\ESLWireACD.sys [184968 2014-03-30] (<Turtle Entertainment>)
S3 hmcxyhhn; No ImagePath
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-17] ()
R3 SAlphamHid; C:\Windows\System32\DRIVERS\SAlpham64.sys [38016 2013-05-31] (SteelSeries Corporation)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R2 VMparport; C:\Windows\system32\drivers\VMparport.sys [31824 2013-10-18] (VMware, Inc.)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [73296 2013-10-08] (VMware, Inc.)
R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [33872 2013-02-22] (VMware, Inc.)
S1 aswKbd; \??\C:\Windows\system32\drivers\aswKbd.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 X6va017; \??\C:\Windows\SysWOW64\Drivers\X6va017 [X]
S3 X6va019; \??\C:\Windows\SysWOW64\Drivers\X6va019 [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-06-28 21:40 - 2014-06-28 21:40 - 00025540 _____ () C:\Users\Mirco\Desktop\FRST.txt
2014-06-28 21:39 - 2014-06-28 21:40 - 00000000 ____D () C:\FRST
2014-06-28 21:39 - 2014-06-28 21:39 - 02083328 _____ (Farbar) C:\Users\Mirco\Desktop\FRST64.exe
2014-06-28 21:38 - 2014-06-28 21:39 - 00000000 ____D () C:\Users\Mirco\Desktop\Trojaner Board
2014-06-28 21:37 - 2014-06-28 21:37 - 00050477 _____ () C:\Users\Mirco\Desktop\Defogger.exe
2014-06-28 21:37 - 2014-06-28 21:37 - 00000168 _____ () C:\Users\Mirco\defogger_reenable
2014-06-28 21:21 - 2014-06-28 21:21 - 00117168 _____ () C:\Users\Mirco\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-28 21:10 - 2014-06-28 21:10 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-06-28 21:10 - 2014-06-28 21:10 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-06-28 21:10 - 2014-06-28 21:10 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-06-28 21:10 - 2014-06-28 21:10 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-28 21:10 - 2014-06-28 21:10 - 00000000 ____D () C:\Program Files (x86)\Java
2014-06-28 21:09 - 2014-06-28 21:29 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-28 21:09 - 2014-06-28 21:09 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-06-28 21:06 - 2014-06-28 21:06 - 01915800 _____ () C:\Users\Mirco\Downloads\winrar-x64-510.exe
2014-06-28 21:05 - 2014-06-28 21:05 - 00918952 _____ (Oracle Corporation) C:\Users\Mirco\Downloads\chromeinstall-7u60.exe
2014-06-24 17:40 - 2014-06-24 17:42 - 00128472 _____ () C:\Users\Mirco\Documents\clip0001.avi.sfk
2014-06-24 17:36 - 2014-06-24 17:39 - 777301510 _____ () C:\Users\Mirco\Documents\clip0001.avi
2014-06-24 17:03 - 2014-06-24 17:03 - 03020528 _____ () C:\Users\Mirco\Downloads\HC2Setup-2.29.01.exe
2014-06-24 16:59 - 2014-06-24 16:59 - 00000828 _____ () C:\Users\Mcx1-MIRCO-PC\Desktop\Crossfire Europe.lnk
2014-06-24 16:51 - 2014-06-24 16:51 - 00000000 ____D () C:\SG Interactive
2014-06-24 16:47 - 2014-06-24 16:47 - 00000000 ____D () C:\Users\Mirco\Desktop\CrossFire EU
2014-06-24 16:43 - 2014-06-24 16:43 - 02156048 _____ (Reloaded Technologies) C:\Users\Mirco\Downloads\Crossfire_downloader (4).exe
2014-06-22 17:39 - 2014-06-22 17:44 - 153414356 _____ () C:\Users\Mirco\Downloads\DayZ Full Source Code - By Yuri-BR.rar
2014-06-21 00:25 - 2014-06-21 00:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4
2014-06-21 00:25 - 2014-06-21 00:25 - 00000000 ____D () C:\Program Files (x86)\Cheat Engine 6.4
2014-06-21 00:24 - 2014-06-21 00:24 - 09053048 _____ (Cheat Engine ) C:\Users\Mirco\Downloads\CheatEngine64.exe
2014-06-20 21:49 - 2014-06-20 21:49 - 00000000 ____D () C:\Users\Mirco\AppData\Roaming\RotMG.Production
2014-06-16 14:29 - 2014-06-16 14:29 - 00000000 ____D () C:\Users\Mirco\AppData\Local\osuTrainer
2014-06-16 14:27 - 2014-06-16 14:29 - 00000000 ____D () C:\Users\Mirco\Desktop\OsuTrainier
2014-06-15 11:17 - 2014-06-15 11:17 - 07020452 _____ () C:\Users\Mirco\Downloads\16091 Flobots - Handlebars.osz
2014-06-14 11:49 - 2014-06-14 11:49 - 00419840 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2014-06-14 11:49 - 2014-06-14 11:49 - 00413696 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll
2014-06-14 11:49 - 2014-06-14 11:49 - 00111616 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll
2014-06-14 11:49 - 2014-06-14 11:49 - 00102400 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll
2014-06-14 11:49 - 2014-06-14 11:49 - 00047026 _____ () C:\Windows\Cmicnfgp.ini.cfl
2014-06-14 11:49 - 2014-06-14 11:49 - 00000140 _____ () C:\Windows\system\Dlap.pfx
2014-06-14 11:49 - 2014-06-14 11:49 - 00000000 ____D () C:\Users\Mirco\AppData\Roaming\ASUS
2014-06-14 11:49 - 2014-06-14 11:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Xonar DX Audio
2014-06-14 11:49 - 2014-06-14 11:49 - 00000000 ____D () C:\Program Files\ASUS Xonar DX Audio
2014-06-14 11:49 - 2014-06-14 11:49 - 00000000 ____D () C:\Program Files (x86)\OpenAL
2014-06-14 11:49 - 2013-03-21 10:11 - 00827904 ____N () C:\Windows\system32\Cmeauoxy.exe
2014-06-14 11:49 - 2012-11-20 11:24 - 12935168 ____N (C-Media Corporation) C:\Windows\SysWOW64\CmiCnfgp.dll
2014-06-14 11:49 - 2012-09-28 15:45 - 00465408 ____N (C-Media Electronics Inc.) C:\Windows\system32\cmasiopx.dll
2014-06-14 11:49 - 2012-09-28 15:45 - 00303104 ____N (C-Media Electronics Inc.) C:\Windows\SysWOW64\cmasiop.dll
2014-06-14 11:49 - 2012-06-06 09:56 - 00143360 ____N () C:\Windows\SysWOW64\VmixP8.dll
2014-06-14 11:49 - 2012-06-04 14:15 - 04533760 ____N () C:\Windows\system32\CmiCnfgp.cpl
2014-06-14 11:49 - 2012-01-06 09:30 - 00212992 ____N (C-Media Electronics Inc.) C:\Windows\SysWOW64\HsSrv2.dll
2014-06-14 11:49 - 2012-01-06 09:30 - 00212992 ____N (C-Media Electronics Inc.) C:\Windows\SysWOW64\HsSrv.dll
2014-06-14 11:49 - 2012-01-06 09:30 - 00122880 ____N (C-Media Electronics Inc.) C:\Windows\system\HsSrv642.dll
2014-06-14 11:49 - 2012-01-06 09:30 - 00122880 ____N (C-Media Electronics Inc.) C:\Windows\system\HsSrv64.dll
2014-06-14 11:49 - 2010-06-25 12:22 - 00000052 ____N () C:\Windows\system32\cmasiopx.ini
2014-06-14 11:49 - 2010-06-25 12:22 - 00000048 ____N () C:\Windows\SysWOW64\cmasiop.ini
2014-06-14 11:49 - 2008-07-11 15:04 - 00200704 _____ () C:\Windows\SysWOW64\HsMgr.exe
2014-06-14 11:49 - 2008-07-11 15:03 - 00282112 _____ () C:\Windows\system\HsMgr64.exe
2014-06-14 11:49 - 2007-12-13 17:12 - 00122880 ____N (CMedia Electronics Inc.) C:\Windows\SysWOW64\Cm_Oal.dll
2014-06-14 11:49 - 2007-12-13 17:12 - 00122880 ____N (CMedia Electronics Inc.) C:\Windows\system32\Cm_Oal.dll
2014-06-14 11:49 - 2007-11-05 01:30 - 01144983 ____N () C:\Windows\KB936225x64.msu
2014-06-14 11:49 - 2006-09-13 10:21 - 00200704 ____N (C-Media) C:\Windows\SysWOW64\Cmpaoxy.dll
2014-06-14 11:48 - 2014-06-14 11:49 - 00000900 _____ () C:\Windows\Cmicnfgp.ini.imi
2014-06-14 11:48 - 2014-06-14 11:49 - 00000839 _____ () C:\Windows\system\Cmicnfgp.ini
2014-06-14 11:48 - 2013-04-11 19:21 - 02734080 _____ (C-Media Inc) C:\Windows\system32\Drivers\cmudaxp.sys
2014-06-14 11:48 - 2013-04-11 19:21 - 00315392 _____ (C-Media Electronics Inc.) C:\Windows\SysWOW64\CmiFltr.dll
2014-06-14 11:48 - 2013-04-11 19:21 - 00315392 _____ (C-Media Electronics Inc.) C:\Windows\system\CmiFltr.dll
2014-06-14 11:48 - 2013-04-11 19:21 - 00032768 _____ (C-Media Electronics Inc.) C:\Windows\system32\cmudaxp.dll
2014-06-14 11:48 - 2013-03-28 12:15 - 00004929 ____N () C:\Windows\Cmicnfgp.ini.cfg
2014-06-14 11:48 - 2009-09-22 19:58 - 00000560 ____N () C:\Windows\cmudaxp.ini
2014-06-14 11:48 - 2009-08-19 16:00 - 00359424 ____N () C:\Windows\system32\CmiInstallResAll64.dll
2014-06-14 11:45 - 2014-06-14 11:47 - 00000000 ____D () C:\Users\Mirco\AppData\Local\Akamai
2014-06-14 11:45 - 2014-06-14 11:45 - 10552296 _____ (Akamai Technologies, Inc.) C:\Users\Mirco\Downloads\AsusInstaller.exe
2014-06-13 18:08 - 2014-06-13 18:08 - 00146183 _____ () C:\Users\Mirco\Downloads\YouTube-Unblocker-056.crx
2014-06-11 18:50 - 2014-05-30 12:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-11 18:50 - 2014-05-30 12:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-11 18:50 - 2014-05-30 11:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-11 18:50 - 2014-05-30 11:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-11 18:50 - 2014-05-30 11:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-11 18:50 - 2014-05-30 11:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-11 18:50 - 2014-05-30 11:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-11 18:50 - 2014-05-30 11:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-11 18:50 - 2014-05-30 11:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-11 18:50 - 2014-05-30 11:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-11 18:50 - 2014-05-30 11:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-11 18:50 - 2014-05-30 11:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-11 18:50 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-11 18:50 - 2014-05-30 11:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-11 18:50 - 2014-05-30 11:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-11 18:50 - 2014-05-30 11:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-11 18:50 - 2014-05-30 10:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-11 18:50 - 2014-05-30 10:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-11 18:50 - 2014-05-30 10:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-11 18:50 - 2014-05-30 10:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-11 18:50 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-11 18:50 - 2014-05-30 10:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-11 18:50 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-11 18:50 - 2014-05-30 10:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-11 18:50 - 2014-05-30 10:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-11 18:50 - 2014-05-30 10:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-11 18:50 - 2014-05-30 10:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-11 18:50 - 2014-05-30 10:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-11 18:50 - 2014-05-30 10:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-11 18:50 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-11 18:50 - 2014-05-30 10:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-11 18:50 - 2014-05-30 10:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-11 18:50 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-11 18:50 - 2014-05-30 10:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-11 18:50 - 2014-05-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-11 18:50 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-11 18:50 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-11 18:50 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-11 18:50 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-11 18:50 - 2014-05-30 09:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-11 18:50 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-11 18:50 - 2014-05-30 09:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-11 18:50 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-11 18:50 - 2014-05-30 09:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-11 18:50 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-11 18:50 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-11 18:50 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-11 18:50 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-11 18:50 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-11 18:50 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-11 18:50 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-11 18:50 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-11 18:50 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-11 18:50 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-11 18:50 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-11 18:50 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-11 18:50 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-11 18:50 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-11 18:50 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-11 18:49 - 2014-06-08 11:13 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-11 18:49 - 2014-06-08 11:08 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-11 18:49 - 2014-05-30 12:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-11 18:49 - 2014-05-30 11:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-11 18:49 - 2014-05-30 10:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-11 18:49 - 2014-05-30 09:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-11 18:49 - 2014-05-30 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-08 23:49 - 2014-06-09 02:25 - 00000000 ____D () C:\Users\Mirco\Desktop\EloBoosting
2014-06-03 19:54 - 2014-06-03 19:54 - 168313013 _____ () C:\Users\Mirco\Downloads\Bryci Bryci Handywork.mp4
2014-06-03 17:25 - 2014-06-04 17:04 - 00000000 ____D () C:\Users\Mirco\Desktop\Wolfenstein
==================== One Month Modified Files and Folders =======
2014-06-28 21:40 - 2014-06-28 21:40 - 00025540 _____ () C:\Users\Mirco\Desktop\FRST.txt
2014-06-28 21:40 - 2014-06-28 21:39 - 00000000 ____D () C:\FRST
2014-06-28 21:39 - 2014-06-28 21:39 - 02083328 _____ (Farbar) C:\Users\Mirco\Desktop\FRST64.exe
2014-06-28 21:39 - 2014-06-28 21:38 - 00000000 ____D () C:\Users\Mirco\Desktop\Trojaner Board
2014-06-28 21:37 - 2014-06-28 21:37 - 00050477 _____ () C:\Users\Mirco\Desktop\Defogger.exe
2014-06-28 21:37 - 2014-06-28 21:37 - 00000168 _____ () C:\Users\Mirco\defogger_reenable
2014-06-28 21:37 - 2013-11-29 15:45 - 00000000 ____D () C:\Users\Mirco
2014-06-28 21:36 - 2013-11-29 22:35 - 00000000 ____D () C:\Users\Mirco\AppData\Roaming\Skype
2014-06-28 21:33 - 2013-11-29 16:01 - 00001120 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3375157477-2246312369-2620638491-1000UA.job
2014-06-28 21:29 - 2014-06-28 21:09 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-28 21:22 - 2013-12-04 19:23 - 00000000 ____D () C:\Users\Mirco\AppData\Local\Paint.NET
2014-06-28 21:21 - 2014-06-28 21:21 - 00117168 _____ () C:\Users\Mirco\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-28 21:18 - 2014-04-14 15:18 - 00000000 ____D () C:\Users\Mirco\AppData\Roaming\TS3Client
2014-06-28 21:18 - 2013-12-27 23:38 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-06-28 21:18 - 2013-12-16 15:43 - 00000000 ____D () C:\Users\Mirco\AppData\Roaming\Notepad++
2014-06-28 21:18 - 2013-11-29 16:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2014-06-28 21:17 - 2014-04-03 20:46 - 00000000 ____D () C:\Program Files (x86)\DevPro
2014-06-28 21:15 - 2014-02-28 18:25 - 00000000 ____D () C:\Users\Mirco\AppData\Roaming\GameRanger
2014-06-28 21:14 - 2014-05-10 18:56 - 00000000 ____D () C:\Windows\Minidump
2014-06-28 21:14 - 2014-02-16 14:21 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-06-28 21:14 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-06-28 21:13 - 2014-05-18 19:24 - 00000000 ____D () C:\ProgramData\DivX
2014-06-28 21:12 - 2013-11-29 16:09 - 00000000 ____D () C:\ProgramData\Oracle
2014-06-28 21:10 - 2014-06-28 21:10 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-06-28 21:10 - 2014-06-28 21:10 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-06-28 21:10 - 2014-06-28 21:10 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-06-28 21:10 - 2014-06-28 21:10 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-06-28 21:10 - 2014-06-28 21:10 - 00000000 ____D () C:\Program Files (x86)\Java
2014-06-28 21:09 - 2014-06-28 21:09 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-06-28 21:09 - 2013-11-29 16:10 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-28 21:09 - 2013-11-29 16:10 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-28 21:08 - 2009-07-14 06:45 - 00014928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-28 21:08 - 2009-07-14 06:45 - 00014928 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-28 21:06 - 2014-06-28 21:06 - 01915800 _____ () C:\Users\Mirco\Downloads\winrar-x64-510.exe
2014-06-28 21:06 - 2013-11-30 20:40 - 00000000 ____D () C:\Users\Mirco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-06-28 21:06 - 2013-11-30 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-06-28 21:06 - 2013-11-30 20:40 - 00000000 ____D () C:\Program Files\WinRAR
2014-06-28 21:05 - 2014-06-28 21:05 - 00918952 _____ (Oracle Corporation) C:\Users\Mirco\Downloads\chromeinstall-7u60.exe
2014-06-28 21:04 - 2013-11-29 15:45 - 01333858 ____N () C:\Windows\WindowsUpdate.log
2014-06-28 21:02 - 2014-01-01 21:09 - 00000000 ____D () C:\Users\Mirco\AppData\Roaming\Raptr
2014-06-28 21:01 - 2014-02-16 14:15 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-06-28 20:59 - 2014-04-15 19:26 - 00000000 ____D () C:\ProgramData\VMware
2014-06-28 20:58 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-28 20:46 - 2014-01-02 19:49 - 00000000 ____D () C:\Program Files (x86)\osu!
2014-06-28 17:33 - 2013-11-29 16:01 - 00001068 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3375157477-2246312369-2620638491-1000Core.job
2014-06-28 16:49 - 2014-03-14 16:29 - 00000000 ____D () C:\Users\Mirco\Desktop\Anime
2014-06-28 10:44 - 2014-01-01 21:09 - 00000000 ____D () C:\Program Files (x86)\Raptr
2014-06-27 14:01 - 2014-02-16 14:15 - 00000000 ____D () C:\ProgramData\Origin
2014-06-27 14:00 - 2013-11-29 16:11 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-06-26 16:15 - 2009-07-14 07:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-06-24 17:42 - 2014-06-24 17:40 - 00128472 _____ () C:\Users\Mirco\Documents\clip0001.avi.sfk
2014-06-24 17:39 - 2014-06-24 17:36 - 777301510 _____ () C:\Users\Mirco\Documents\clip0001.avi
2014-06-24 17:03 - 2014-06-24 17:03 - 03020528 _____ () C:\Users\Mirco\Downloads\HC2Setup-2.29.01.exe
2014-06-24 16:59 - 2014-06-24 16:59 - 00000828 _____ () C:\Users\Mcx1-MIRCO-PC\Desktop\Crossfire Europe.lnk
2014-06-24 16:59 - 2014-03-23 02:09 - 00000828 _____ () C:\Users\Mirco\Desktop\Crossfire Europe.lnk
2014-06-24 16:51 - 2014-06-24 16:51 - 00000000 ____D () C:\SG Interactive
2014-06-24 16:47 - 2014-06-24 16:47 - 00000000 ____D () C:\Users\Mirco\Desktop\CrossFire EU
2014-06-24 16:43 - 2014-06-24 16:43 - 02156048 _____ (Reloaded Technologies) C:\Users\Mirco\Downloads\Crossfire_downloader (4).exe
2014-06-24 16:43 - 2014-02-28 21:33 - 00000534 _____ () C:\console.log
2014-06-24 16:30 - 2013-11-29 16:31 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client
2014-06-22 17:44 - 2014-06-22 17:39 - 153414356 _____ () C:\Users\Mirco\Downloads\DayZ Full Source Code - By Yuri-BR.rar
2014-06-21 13:28 - 2014-01-19 00:29 - 00000000 ____D () C:\Users\Mirco\AppData\Roaming\FileZilla
2014-06-21 13:28 - 2013-12-27 23:28 - 00000000 ____D () C:\Users\Mirco\AppData\Roaming\DAEMON Tools Lite
2014-06-21 12:34 - 2014-02-28 22:03 - 00000000 ____D () C:\Users\Mirco\Documents\Cross Fire
2014-06-21 00:25 - 2014-06-21 00:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4
2014-06-21 00:25 - 2014-06-21 00:25 - 00000000 ____D () C:\Program Files (x86)\Cheat Engine 6.4
2014-06-21 00:24 - 2014-06-21 00:24 - 09053048 _____ (Cheat Engine ) C:\Users\Mirco\Downloads\CheatEngine64.exe
2014-06-20 21:49 - 2014-06-20 21:49 - 00000000 ____D () C:\Users\Mirco\AppData\Roaming\RotMG.Production
2014-06-19 16:36 - 2013-11-29 22:35 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-06-19 16:35 - 2013-11-29 22:35 - 00000000 ____D () C:\ProgramData\Skype
2014-06-17 17:28 - 2013-11-29 16:01 - 00004090 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3375157477-2246312369-2620638491-1000UA
2014-06-17 17:28 - 2013-11-29 16:01 - 00003694 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3375157477-2246312369-2620638491-1000Core
2014-06-16 14:29 - 2014-06-16 14:29 - 00000000 ____D () C:\Users\Mirco\AppData\Local\osuTrainer
2014-06-16 14:29 - 2014-06-16 14:27 - 00000000 ____D () C:\Users\Mirco\Desktop\OsuTrainier
2014-06-15 11:17 - 2014-06-15 11:17 - 07020452 _____ () C:\Users\Mirco\Downloads\16091 Flobots - Handlebars.osz
2014-06-14 11:59 - 2013-11-29 16:26 - 00000000 ____D () C:\Users\Mirco\Desktop\Software
2014-06-14 11:49 - 2014-06-14 11:49 - 00419840 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2014-06-14 11:49 - 2014-06-14 11:49 - 00413696 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll
2014-06-14 11:49 - 2014-06-14 11:49 - 00111616 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll
2014-06-14 11:49 - 2014-06-14 11:49 - 00102400 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll
2014-06-14 11:49 - 2014-06-14 11:49 - 00047026 _____ () C:\Windows\Cmicnfgp.ini.cfl
2014-06-14 11:49 - 2014-06-14 11:49 - 00000140 _____ () C:\Windows\system\Dlap.pfx
2014-06-14 11:49 - 2014-06-14 11:49 - 00000000 ____D () C:\Users\Mirco\AppData\Roaming\ASUS
2014-06-14 11:49 - 2014-06-14 11:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Xonar DX Audio
2014-06-14 11:49 - 2014-06-14 11:49 - 00000000 ____D () C:\Program Files\ASUS Xonar DX Audio
2014-06-14 11:49 - 2014-06-14 11:49 - 00000000 ____D () C:\Program Files (x86)\OpenAL
2014-06-14 11:49 - 2014-06-14 11:48 - 00000900 _____ () C:\Windows\Cmicnfgp.ini.imi
2014-06-14 11:49 - 2014-06-14 11:48 - 00000839 _____ () C:\Windows\system\Cmicnfgp.ini
2014-06-14 11:49 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system
2014-06-14 11:47 - 2014-06-14 11:45 - 00000000 ____D () C:\Users\Mirco\AppData\Local\Akamai
2014-06-14 11:45 - 2014-06-14 11:45 - 10552296 _____ (Akamai Technologies, Inc.) C:\Users\Mirco\Downloads\AsusInstaller.exe
2014-06-13 22:08 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-06-13 18:08 - 2014-06-13 18:08 - 00146183 _____ () C:\Users\Mirco\Downloads\YouTube-Unblocker-056.crx
2014-06-12 18:32 - 2013-11-29 20:05 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-06-12 16:58 - 2013-11-29 16:03 - 00002360 _____ () C:\Users\Mirco\Desktop\Google Chrome.lnk
2014-06-11 20:29 - 2014-04-08 16:51 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-11 20:27 - 2014-04-08 16:51 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-11 20:27 - 2014-01-19 13:57 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-11 20:25 - 2014-05-06 22:16 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-06-11 19:06 - 2014-01-03 12:33 - 00000000 ____D () C:\Users\Mirco\AppData\Roaming\WTablet
2014-06-09 02:25 - 2014-06-08 23:49 - 00000000 ____D () C:\Users\Mirco\Desktop\EloBoosting
2014-06-08 11:13 - 2014-06-11 18:49 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-08 11:08 - 2014-06-11 18:49 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-06-04 17:04 - 2014-06-03 17:25 - 00000000 ____D () C:\Users\Mirco\Desktop\Wolfenstein
2014-06-03 19:54 - 2014-06-03 19:54 - 168313013 _____ () C:\Users\Mirco\Downloads\Bryci Bryci Handywork.mp4
2014-06-03 17:27 - 2013-12-04 19:23 - 00000000 ____D () C:\Users\Mirco\Desktop\Programme
2014-06-03 16:24 - 2009-07-14 19:58 - 00767758 _____ () C:\Windows\system32\perfh007.dat
2014-06-03 16:24 - 2009-07-14 19:58 - 00175514 _____ () C:\Windows\system32\perfc007.dat
2014-06-03 16:24 - 2009-07-14 07:13 - 01813436 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-01 16:04 - 2014-03-11 18:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinHTTrack
2014-06-01 16:04 - 2014-03-11 18:47 - 00000000 ____D () C:\Program Files\WinHTTrack
2014-06-01 01:57 - 2014-04-15 19:33 - 00000000 ____D () C:\Users\Mirco\AppData\Roaming\VMware
2014-06-01 01:57 - 2014-04-15 19:33 - 00000000 ____D () C:\Users\Mirco\AppData\Local\VMware
2014-05-31 16:17 - 2013-12-22 01:14 - 00000000 ____D () C:\Program Files\OBS
2014-05-31 15:24 - 2014-05-12 17:40 - 00000000 ____D () C:\Users\Mirco\Documents\FIFA 14
2014-05-30 12:21 - 2014-06-11 18:49 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-30 12:02 - 2014-06-11 18:50 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-30 12:02 - 2014-06-11 18:50 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-30 11:45 - 2014-06-11 18:50 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-30 11:39 - 2014-06-11 18:50 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-30 11:39 - 2014-06-11 18:50 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-30 11:38 - 2014-06-11 18:50 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-30 11:28 - 2014-06-11 18:50 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-30 11:27 - 2014-06-11 18:50 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-30 11:24 - 2014-06-11 18:50 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-30 11:21 - 2014-06-11 18:50 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-30 11:21 - 2014-06-11 18:50 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-30 11:20 - 2014-06-11 18:50 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-30 11:18 - 2014-06-11 18:50 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-30 11:11 - 2014-06-11 18:49 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-30 11:08 - 2014-06-11 18:50 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-30 11:06 - 2014-06-11 18:50 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-30 11:02 - 2014-06-11 18:50 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-30 10:55 - 2014-06-11 18:50 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-30 10:49 - 2014-06-11 18:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-30 10:46 - 2014-06-11 18:50 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-30 10:44 - 2014-06-11 18:50 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-05-30 10:44 - 2014-06-11 18:50 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-30 10:43 - 2014-06-11 18:50 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-30 10:42 - 2014-06-11 18:50 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-05-30 10:38 - 2014-06-11 18:50 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-30 10:35 - 2014-06-11 18:50 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-30 10:34 - 2014-06-11 18:50 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-30 10:33 - 2014-06-11 18:50 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-30 10:30 - 2014-06-11 18:50 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-30 10:29 - 2014-06-11 18:50 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-30 10:28 - 2014-06-11 18:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-30 10:27 - 2014-06-11 18:50 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-05-30 10:24 - 2014-06-11 18:50 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-30 10:23 - 2014-06-11 18:50 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-30 10:16 - 2014-06-11 18:50 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-30 10:10 - 2014-06-11 18:50 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-05-30 10:06 - 2014-06-11 18:50 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-30 10:04 - 2014-06-11 18:50 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-30 10:02 - 2014-06-11 18:50 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-30 09:56 - 2014-06-11 18:50 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-30 09:56 - 2014-06-11 18:49 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-30 09:54 - 2014-06-11 18:50 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-30 09:50 - 2014-06-11 18:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-05-30 09:49 - 2014-06-11 18:50 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-30 09:43 - 2014-06-11 18:50 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-30 09:40 - 2014-06-11 18:50 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-30 09:30 - 2014-06-11 18:50 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-30 09:21 - 2014-06-11 18:50 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-30 09:15 - 2014-06-11 18:50 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-30 09:13 - 2014-06-11 18:50 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-05-30 09:13 - 2014-06-11 18:49 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-06-28 12:12
==================== End Of Log ============================
|
| Themen zu Computer Arbeitsspeicher ausgelastet durch dllhost.exe |
| akamai, antivirus, ausgelastet, avast, browser, computer, cpu, cyberghost, dllhost.exe, downloader, explorer, flash player, google, home, homepage, mozilla, problem, registry, scan, security, server, software, svchost.exe, system, tablet, teamspeak, windows, winlogon.exe |
Baum-Darstellung